zerosum0x0
ffa376c514
added MS17-010 auxiliary detection module
2017-03-29 14:33:02 -06:00
David Maloney
a571bcdba4
update module description
2017-03-29 13:58:36 -05:00
David Maloney
418e371e35
add SMB2 login scanner and module
...
add smb2_login module backed by an smb2
LoginScanner class. This is a temporary alternative
to smb_login until ruby_smb catches up more on feature parity
MS-2557
2017-03-29 11:36:33 -05:00
juushya
30896d1fab
Add Cambium ePMP Arbitrary Command Execution Module
2017-03-28 00:17:36 +05:30
William Webb
66a585ab41
Land #8050 , Add Cambium ePMP System Hash Dumper
2017-03-27 12:08:53 -05:00
William Webb
935c59306b
Land #7897 , Add Cambium ePMP 1000 Device Configuration file dumper
2017-03-27 12:05:11 -05:00
William Webb
d705949b37
Land #7784 , Cambium ePMP 1000 Login Scanner
2017-03-27 12:01:56 -05:00
Pearce Barry
31c03840bb
Style fixes for HWBridge RF and a couple small bug fixes
...
I should have tweaked these earlier, my bad.
2017-03-26 13:45:19 -05:00
juushya
dd7cf39678
updated references
2017-03-25 12:31:08 +05:30
juushya
63d88c159a
updated references
2017-03-25 12:27:38 +05:30
juushya
fd5e25bcc2
restored version check
2017-03-25 12:08:00 +05:30
Javier Godinez
68e4b8a855
Updated user data param to load aggregator
2017-03-24 22:58:04 -07:00
Carter
82ebbfb9a7
Fix msftidy warnings
2017-03-24 23:12:48 -04:00
Carter
3e2173d4f9
Add key length check and remove mixin
...
Also add a reference to the original honeyscore website
2017-03-24 22:33:09 -04:00
Carter
581d523d5b
Fix things from review
2017-03-24 21:22:23 -04:00
dmohanty-r7
92c0748447
Land #8102 , Add a plugin to notify new sessions via SMS
2017-03-24 11:17:59 -05:00
William Webb
e04f01ed6b
Land #7778 , RCE on Netgear WNR2000v5
2017-03-23 15:34:16 -05:00
Carter
8dd0f953b0
remove unnecessary require
2017-03-22 19:48:24 -04:00
Carter
420df11c44
Change up the way shodan is reached
2017-03-22 19:39:45 -04:00
Patrick DeSantis
2200c9faee
Create moxa_discover.rb
2017-03-22 10:49:26 -04:00
Carter
fa61d67761
Fix score comparison
2017-03-21 19:17:20 -04:00
Carter
fef8ec10bc
Fix author formatting
2017-03-21 13:23:41 -04:00
Carter
d7640713df
Add more checks and formatting
2017-03-21 13:23:06 -04:00
Carter
1f68a3bda6
Rename honeypot.rb to shodan_honeyscore.rb
2017-03-21 13:10:31 -04:00
Carter
79c7b84f08
Create honeypot.rb
2017-03-21 11:15:12 -04:00
Craig Smith
2fde287424
Initial patch for rftransceiver (RfCat / YardstickOne)
2017-03-20 17:36:16 -05:00
Pearce Barry
2acd941b16
Merge branch 'master' into dtc_fix
2017-03-20 14:10:01 -05:00
Pearce Barry
06ebb22a8f
Land #8065 , Zigbee Hardware Bridge Extension
2017-03-20 10:44:15 -05:00
h00die
7bcd53d87d
Land #8079 , exploit and aux for dnaLims
2017-03-20 11:08:05 -04:00
h00die
fd5345a869
updates per pr
2017-03-20 10:40:43 -04:00
Brent Cook
aa1e76f28e
Land #8128 , ensure there is a response before deferencing
2017-03-19 22:17:31 -05:00
Javier Godinez
534ca8c5cb
fix: URL encoding userdata
2017-03-18 21:52:49 -07:00
Javier Godinez
26d344a0ef
Initial checkin of launch instances module
2017-03-18 21:52:49 -07:00
h00die
f88a522bf5
fix #8121
2017-03-18 14:50:24 -04:00
h00die
06e6a973ce
land #7944 a scanner for Carlo Gavazzi energy meters
2017-03-18 10:35:43 -04:00
Brent Cook
ea4ca7ecc5
Land #8116 , Handle ::Errno::ECONNRESET in telnet_version
2017-03-17 12:32:02 -05:00
William Vu
db6bc6c784
Land #8100 , msfcrawler improvements
...
Does anyone use this anymore??
2017-03-16 21:31:23 -05:00
bwatters-r7
ab75794cd4
Land #8071 , Add API to send an MMS message to mobile devices
2017-03-16 11:57:34 -05:00
wchen-r7
a1d7748d82
Fix #8061 , Handle ::Errno::ECONNRESET in telnet_version
...
Fix #8061
2017-03-15 16:33:37 -05:00
wchen-r7
d4ee254057
Land #8076 , Add Easy File Sharing FTP Server Version 3.6 traversal
2017-03-15 16:17:13 -05:00
wchen-r7
8afe6a9061
Update easy_file_sharing_ftp and add documentation
2017-03-15 16:14:41 -05:00
Brent Cook
b65919e7b1
Land #7956 , Add QNAP NAS/NVR administrator hash disclosure
2017-03-15 11:12:59 -05:00
William Vu
0a71e4a903
Update check with Exploit::CheckCode::Appears
2017-03-15 05:13:30 -05:00
William Vu
86d2217f4d
Fix whitespace and clarify options
2017-03-15 04:27:30 -05:00
William Vu
a0bff5c8c3
Bump RETRIES to 10
...
3 was a bit too low. I was using 10 and had more success with it.
2017-03-15 03:18:09 -05:00
wchen-r7
cf8b4a78fa
Bring branch up to date with upstream-master
2017-03-14 16:48:33 -05:00
wchen-r7
bb4d6e17c8
Resolve #8026 , Add a plugin to notify new sessions via SMS
...
This plugin will notify you of a new session via SMS.
It also changes the SMS text format to MIME.
Resolve #8026
2017-03-13 16:13:59 -05:00
Jon P
665adec298
Patching storedb function (adding host/port/ssl for correct report_web_page)
2017-03-13 17:37:47 +01:00
William Vu
9f76b4d99c
Change default RPORT to 443 with SSL
...
I never really tested port 80, so I wonder why I didn't change this.
Turns out 80 isn't even the vuln service. Welp. Hat tip @bcoles.
2017-03-12 21:03:31 -05:00
William Vu
e7c920db44
Remove DEBEUG/print_debeug :(
2017-03-12 21:01:48 -05:00
William Vu
d57b772ac9
Bump default RETRIES to 3
2017-03-12 21:00:38 -05:00
dmohanty-r7
25bfa88c46
Land #7877 , Add mDNS query spoofing service
2017-03-10 15:44:57 -06:00
wchen-r7
ed22902fd4
Support the subject field
2017-03-08 11:40:08 -06:00
Craig Smith
f60dae0917
Lots of syntax fixups from rubocop
2017-03-08 09:21:33 -08:00
Ahmed Elhady Mohamed
183be81ba8
Easy File Sharing FTP Server Directory Traversal
2017-03-08 17:59:27 +02:00
wchen-r7
e327f9b330
Update other module descriptions
2017-03-07 16:55:06 -06:00
wchen-r7
dc13b84189
Bring mms branch up to date w/ master
2017-03-07 16:13:39 -06:00
Jin Qian
7e19486a97
Merge branch 'wchen-r7-sms' into upstream-master
...
Merged #8047
2017-03-07 15:56:00 -06:00
wchen-r7
fbde0d18f2
Add auxiliary/client/mms/send_mms
2017-03-07 12:53:17 -06:00
Craig Smith
60cd04bc7b
Added module for zstumbler
2017-03-06 16:10:14 -08:00
juushya
0b5da60564
Added nil check + formatting edits
2017-03-07 02:17:21 +05:30
juushya
d99d81992f
Added nil check + formatting edits
2017-03-07 02:16:01 +05:30
juushya
05efb61d3b
Added nil check + formatting edits
2017-03-07 02:14:18 +05:30
juushya
62b0efd99d
Added nil check + formatting edits
2017-03-07 01:44:23 +05:30
juushya
9a5ab604e5
Added nil check + formatting edits
2017-03-07 01:21:07 +05:30
juushya
2d8e3c73f5
Minor edits
2017-03-07 00:20:05 +05:30
juushya
3ab214e758
Minor edits
2017-03-07 00:03:24 +05:30
wchen-r7
a466dc44c6
Do exception handling for sms client
2017-03-06 10:54:08 -06:00
Pearce Barry
b5afac6627
Per PR #8054 , we don't need the OUTPUTPATH option here.
2017-03-03 16:20:01 -06:00
wchen-r7
48e06e27b0
Fix #8052 , remove forgotten OUTPUTPATH option
...
Fix #8052
2017-03-03 12:00:07 -06:00
wchen-r7
6ad8afb8b3
Add API to send a text message (SMS) to mobile devices
2017-03-02 16:47:55 -06:00
juushya
e8460c3b94
Minor edit
2017-03-03 02:37:20 +05:30
juushya
fafd35330d
Add epmp1000 dump hashes module
2017-03-03 02:22:34 +05:30
juushya
c6e65b1521
Minor edits
2017-03-03 02:00:19 +05:30
juushya
6bd09c142f
Minor edits
2017-03-03 00:53:17 +05:30
juushya
c9a354b844
Added nil checks
2017-03-01 20:18:51 +05:30
Craig Smith
dcb42a3e69
Initial zigbee support using killerbee. Core session setup portion
2017-02-27 17:29:54 -08:00
wchen-r7
69c7b0168c
Restore USERNAME and PASSWORD options for owa_login
...
Requested by our own pentesters, the username & password options
should be restored so users can more easily try one password but
multiple users.
2017-02-27 15:04:06 -06:00
William Vu
634753f985
Add QNAP admin hash "disclosure"
2017-02-24 19:18:30 -06:00
James Barnett
2631259919
Land #7973 , Enable cert validation for Nexpose
...
This PR enables connection to a Nexpose console using the
nexpose client gem.
It also allows you to connect using a trusted certificate
instead of simply overriding the SSL validation.
2017-02-24 14:27:24 -06:00
h00die
43550b8cdf
fixing line length
2017-02-23 19:55:23 -05:00
h00die
041238f77c
land #7896 Binom3 power meter scanner and brute
2017-02-23 19:49:50 -05:00
bwatters-r7
40e6413867
Land #7980 , Add a sploit for CVE-2017-5982, kodi file traversal
2017-02-22 13:11:48 -06:00
Jan-Erik Rediger
49da6289a9
Fix typo in smtp fuzzer
2017-02-20 21:47:59 +01:00
jvoisin
73eed104a9
Take into account @h00die's comments.
2017-02-20 13:22:20 +01:00
jvoisin
7bd6aff1cf
Add a sploit for CVE-2017-5982
2017-02-19 21:57:27 +01:00
Brent Cook
24151a9c27
Land #7753 , Add auxiliary RomPager misfortune cookie authentication bypass
2017-02-17 18:07:15 -06:00
Brent Cook
e4c324c988
Land #7941 , treat a user with no mailbox as a valid credential anyway
2017-02-17 17:09:57 -06:00
Jeffrey Martin
cbfe18e4d7
use certificates in nexpose
2017-02-16 14:34:02 -06:00
aushack
3b386f86f6
Typo fix.
2017-02-14 17:05:46 +11:00
juushya
e6bfbb7c78
Added random cookie gen, res checks, & minor updates
2017-02-12 16:55:11 +05:30
juushya
906ca6c24e
Add Carlo Gavazzi module
2017-02-11 11:18:43 +05:30
James Barnett
94a234e5bf
Specify sname as http/https to keep with standards throughout the code.
2017-02-10 17:31:08 -06:00
jakxx
58779f0aaf
owa_login no mailbox bugfix
...
The owa_login module currently misses a success condition where the
creds are valid but there is no mailbox setup. This commit adds the
check for the condition for OWA 2013.
2017-02-09 21:35:58 -05:00
wchen-r7
4a9a8adaa1
Land #7928 , http_version now stores the fingerprints
2017-02-09 16:28:51 -06:00
James Lee
4f13bde471
Override `empty?` for the weird ones
...
Fixes #7899
2017-02-09 14:57:20 -06:00
Christian Mehlmauer
8ade9b8aae
Land #7905 , WordPress content injection module
2017-02-09 15:49:50 +01:00
William Vu
cf395ea7b1
Make error checks more consistent
2017-02-08 18:00:44 -06:00
William Vu
0d56676690
Add error check for listing posts
2017-02-08 17:13:12 -06:00
Spencer McIntyre
cba5e266f8
Land #7916 , module for netgear password disclosure
2017-02-08 15:48:55 -05:00
Carter
e7b421e226
Update netgear_password_disclosure.rb
2017-02-08 13:40:11 -05:00
William Vu
766e7b013d
Once more, with feeling
2017-02-08 09:17:37 -06:00
William Vu
a71b097e6b
Revert status iteration, since it doesn't work
...
Also.
2017-02-08 09:13:42 -06:00
Carter
fd935c8e3c
Update netgear_password_disclosure.rb
2017-02-08 09:14:39 -05:00
William Vu
6b2a995a7d
Revert AutoPublish, since it doesn't work
...
Apparently.
2017-02-08 07:43:17 -06:00
William Vu
df38a91fbd
Be nice and parse JSON for the error
2017-02-08 07:37:09 -06:00
Carter
2dfff95669
Fix msftidy warning
2017-02-08 08:28:23 -05:00
William Vu
befe224c58
Use wordpress_and_online? before actions
2017-02-08 07:24:57 -06:00
William Vu
46ab03f528
Add SearchTerm to filter listed posts
2017-02-08 06:10:46 -06:00
William Vu
064420075f
Update diagnostics and print better header
2017-02-08 04:54:25 -06:00
William Vu
6df55c9733
Gotta catch 'em (post statuses) all
2017-02-08 04:31:06 -06:00
William Vu
7583d050b7
Add AutoPublish to publish updated posts
2017-02-08 04:01:42 -06:00
William Vu
e480107bd5
Add PostCount (default 100) to list more posts
2017-02-08 03:52:20 -06:00
William Vu
13f4b0d7ae
Be more specific with invalid post ID
2017-02-08 02:18:52 -06:00
Carter
c16b7e42a6
Fix review stuff
2017-02-07 21:41:38 -05:00
Carter
46fbc9dd3f
Fix some formatting
2017-02-07 21:32:19 -05:00
William Vu
6f4ff89218
Add WPVDB reference
2017-02-07 18:33:58 -06:00
jvoisin
96f7b2e245
http_version now store the fngerprints
...
Currently, the `http_version` module doesn't store the fingerprints
into the database; this commit should fix this behaviour.
2017-02-07 18:36:36 +01:00
Carter
f4580a2616
Add token value check
...
Sometimes it wouldn't return creds if the token is 0. It usually works after running it another time.
2017-02-07 10:53:25 -05:00
Carter
c1f9b724cf
Maybe fix syntax error
2017-02-07 10:36:05 -05:00
William Vu
b4056a110b
Print diagnostics if no posts found/given
2017-02-07 04:37:05 -06:00
William Vu
e1ade9caf8
Land #7910 , closed ports fix for TCP portscan
2017-02-07 02:23:15 -06:00
Carter
00050abb73
Fix msftidy warnings
2017-02-06 22:06:50 -05:00
Carter
1f2a95c202
Use html parser instead of regex
2017-02-06 22:03:56 -05:00
Carter
115c60446e
Fix weird if loop in check
2017-02-06 17:30:49 -05:00
Carter
6ebdbc3f81
Fix some stuff from review
...
I'm going to change the HTML Regex to a parser a bit later, I don't have time right now
2017-02-06 17:29:39 -05:00
h00die
f531366d89
Land #7790 an aux module to extract Meteocontrol Weblog admin password
2017-02-06 15:23:06 -05:00
Carter
9b4ca31432
Fix typo
2017-02-06 12:52:41 -05:00
Carter
52cf9c44df
Update netgear_password_disclosure.rb
2017-02-06 12:43:31 -05:00
Carter
16c6480629
Add response checks
...
I can't test this right now as I'm not at a computer that has metasploit installed, but I'll test it when I get a chance to.
2017-02-06 12:10:01 -05:00
Carter
f5450a718a
Add TARGETURI datastore option
2017-02-06 11:54:29 -05:00
Carter
99227aca1a
Fix things from review
2017-02-06 09:44:35 -05:00
William Vu
8af966a132
Add WordPress content injection module
2017-02-06 04:40:26 -06:00
Carter
fb7e5ff847
Fix more msftidy warnings
2017-02-05 14:00:05 -05:00
Carter
f08590982c
Fix some msftidy warnings
2017-02-05 13:58:01 -05:00
Carter
609ea3700a
Create netgear_password_disclosure.rb
2017-02-05 13:39:58 -05:00
MatToufoutu
db77061719
do not add closed ports to database
2017-02-04 16:24:40 +01:00
juushya
d305f895ff
Fixed a typo space
2017-02-04 11:59:45 +05:30
juushya
36416c20cb
Updated check for extract fail case now + Minor edits
2017-02-04 03:00:31 +05:30
juushya
34b861403e
Minor updates
2017-02-04 01:44:18 +05:30
Pearce Barry
23c2787d57
Land #7795 , Hardware Bridge API.
...
Initial bridge API that supports the HW rest protocol.
2017-02-02 08:47:59 -06:00
Pearce Barry
16de745437
Minor code cleanups/corrections.
2017-02-01 16:12:45 -06:00
juushya
58a50d7dd1
Minor edits
2017-02-01 04:46:05 +05:30
juushya
6d6db2f40f
Add epmp1000 dump config module
2017-02-01 04:42:47 +05:30
juushya
20a51371ce
Minor Edits
2017-02-01 04:23:28 +05:30
juushya
423648e347
Minor edits
2017-02-01 03:53:14 +05:30
juushya
82d2777417
Minor update
2017-02-01 03:44:50 +05:30
juushya
59e31e26f2
Add Binom3 module
2017-02-01 03:35:35 +05:30
Pedro Ribeiro
d5845343bd
Fix whitespace, thanks msftidy!
2017-01-30 10:15:20 +00:00
Pedro Ribeiro
fd6e10bf26
Add CVE numbers
2017-01-30 10:03:13 +00:00